Lucene search
K

439 matches found

Amazon
Amazon
added 2024/12/12 12:0 a.m.4 views

Medium: apr

Issue Overview: Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data. This issue does not affect non-Unix platforms, or builds with APRUSESHMEMSHMGET=1 apr...

5.5CVSS7.5AI score0.00332EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.16 views

Amazon Linux 2023 : apr, apr-devel (ALAS2023-2024-789)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-789 advisory. Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data. This...

5.5CVSS6.2AI score0.00332EPSS
Exploits0References4
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2024/12/05 2:54 p.m.13 views

[R2] Security Center Version 6.5.0 Fixes Multiple Vulnerabilities

R2 Security Center Version 6.5.0 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 12/05/2024 - 09:54 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, PHP, Apache Portable Runtime were found to contain...

2.7CVSS4.1AI score0.00177EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.10 views

RHEL 6 : httpd24-apr (RHSA-2018:0316)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0316 advisory. The Apache Portable Runtime APR is a portability library used by the Apache HTTP Server and other projects. It provides a free library of C data...

7.1CVSS6.3AI score0.01749EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/02 12:0 a.m.14 views

CBL Mariner 2.0 Security Update: apr (CVE-2023-49582)

The version of April installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-49582 advisory. - Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read...

5.5CVSS6.3AI score0.00332EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/11/01 7:0 a.m.5 views

Apache Portable Runtime (APR): Unexpected lax shared memory permissions

...

5.5CVSS7AI score0.00332EPSS
Exploits0
Redos
Redos
added 2024/10/17 12:0 a.m.298 views

ROS-20241017-07

Apache Portable Runtime library vulnerability is related to the ability to read named shared memory segments. memory. Exploitation of the vulnerability could allow an attacker for a critical resource to gain access to sensitive information...

5.5CVSS6.7AI score0.00332EPSS
Exploits0
OSV
OSV
added 2024/10/16 4:33 a.m.5 views

USN-7038-2 apr vulnerability

USN-7038-1 fixed a vulnerability in Apache Portable Runtime APR library. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: Thomas Stangner discovered a permission vulnerability in the Apache Portable Runtime APR library. A local attacker could possibly...

5.5CVSS6.3AI score0.00332EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/10/16 4:33 a.m.12 views

USN-7038-2: APR vulnerability

USN-7038-1 fixed a vulnerability in Apache Portable Runtime APR library. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: Thomas Stangner discovered a permission vulnerability in the Apache Portable Runtime APR library. A local attacker could possibly...

5.5CVSS6.5AI score0.00332EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.23 views

Ubuntu 14.04 LTS : APR vulnerability (USN-7038-2)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7038-2 advisory. USN-7038-1 fixed a vulnerability in Apache Portable Runtime APR library. This update provides the corresponding update for Ubuntu 14.04 LTS. Tenable has extracted...

5.5CVSS6.4AI score0.00332EPSS
Exploits0References2
OSV
OSV
added 2024/10/12 11:9 a.m.4 views

OESA-2024-2229 apr security update

The mission of the Apache Portable Runtime APR project is to create and maintain software libraries that provide a predictable and consistent interface to underlying platform-specific implementations. The primary goal is to provide an API to which software developers may code and be assured of...

5.5CVSS6.7AI score0.00332EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/09/27 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-7038-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.1AI score0.00332EPSS
Exploits0References2
OSV
OSV
added 2024/09/26 9:9 a.m.3 views

USN-7038-1 apr vulnerability

Thomas Stangner discovered a permission vulnerability in the Apache Portable Runtime APR library. A local attacker could possibly use this issue to read named shared memory segments, potentially exposing sensitive application data...

5.5CVSS6.3AI score0.00332EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/09/26 9:9 a.m.237 views

USN-7038-1: APR vulnerability

Thomas Stangner discovered a permission vulnerability in the Apache Portable Runtime APR library. A local attacker could possibly use this issue to read named shared memory segments, potentially exposing sensitive application data...

5.5CVSS6.5AI score0.00332EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/14 12:0 a.m.14 views

Fedora 39 : apr (2024-318343049c)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-318343049c advisory. This update to the apr package fixes a security issue in the handling of shared memory permissions. SECURITY: CVE-2023-49582: Apache Portable Runtime APR:...

5.5CVSS6.4AI score0.00332EPSS
Exploits0References2
Fedora
Fedora
added 2024/09/13 8:59 p.m.12 views

[SECURITY] Fedora 41 Update: apr-1.7.5-1.fc41

The mission of the Apache Portable Runtime APR is to provide a free library of C data structures and routines, forming a system portability layer to as many operating systems as possible, including Unices, MS Win32, BeOS and OS/2...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2024/09/11 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2024-0292)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.7AI score0.00332EPSS
Exploits0References4
OSV
OSV
added 2024/09/10 4:40 p.m.14 views

MGASA-2024-0292 Updated apr packages fix security vulnerability

Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data. CVE-2023-49582...

5.5CVSS6.6AI score0.00332EPSS
Exploits0References3
Mageia
Mageia
added 2024/09/10 4:40 p.m.19 views

Updated apr packages fix security vulnerability

Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data. CVE-2023-49582...

5.5CVSS6.6AI score0.00332EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-b40491b84b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.1AI score0.00332EPSS
Exploits0References3
Rows per page
Query Builder